[23095] | 1 | .TH UPDATE_SERVER 8 "30 Nov 1988" "Project Athena" |
---|
[24319] | 2 | \" RCSID: $HeadURL: svn+ssh://svn.mit.edu/moira/trunk/moira/man/update_server.8 $ $Id: update_server.8 3956 2010-01-05 20:56:56Z zacheiss $ |
---|
[23095] | 3 | .SH NAME |
---|
| 4 | update_server \- daemon that accepts config files from Moira |
---|
| 5 | .SH SYNOPSIS |
---|
| 6 | .B update_server |
---|
| 7 | .SH DESCRIPTION |
---|
| 8 | An |
---|
| 9 | .B update_server |
---|
| 10 | must be started at boot time on each server that is to be updated by |
---|
| 11 | Moira. It should be run as root. It takes no arguments, and will |
---|
| 12 | detach from the tty and put itself in background. It attempts to log |
---|
| 13 | its actions to stdout, so the output should be directed to a file if |
---|
| 14 | it is needed. |
---|
| 15 | .SH OPTIONS |
---|
| 16 | While there are no command line options, a configuration file |
---|
| 17 | .I /etc/athena/moira.conf |
---|
| 18 | may specify a number of options. This file may contain blank lines, |
---|
| 19 | comments preceeded by hash marks, boolean options, or string options. |
---|
| 20 | A boolean option is set by just putting the name of the option on a |
---|
| 21 | line. A string option is specified by putting the name of the option, |
---|
| 22 | some whitespace, and then the value. |
---|
| 23 | .IP "user username" |
---|
| 24 | This will set the UID of the running server to the specified user's |
---|
| 25 | UID. All file accesses and the execution of the instructions will be |
---|
| 26 | with this user's privileges. |
---|
| 27 | .IP "chroot directory" |
---|
| 28 | This will set the root directory to the specified directory for the |
---|
| 29 | running of the server. It uses the chroot system call, so when used |
---|
| 30 | in conjunction with the |
---|
| 31 | .I user |
---|
| 32 | option should make the server quite secure. |
---|
| 33 | .IP nofork |
---|
| 34 | This boolean specifies that the server should not fork when a new |
---|
| 35 | connection is opened. This is only useful for debugging, as when the |
---|
| 36 | client connection is closed, the server will exit. |
---|
| 37 | .IP noclobber |
---|
| 38 | This boolean specifies that the server is not allowed to overwrite any |
---|
| 39 | existing files while it is receiving datafiles and instructions. |
---|
| 40 | .IP noexec |
---|
| 41 | This boolean specifies that the server is not allowed to execute any |
---|
| 42 | instructions. It may receive datafiles and instructions, but not |
---|
| 43 | execute anything. |
---|
| 44 | .IP "auth user.instance@REALM" |
---|
| 45 | This specifies a Kerberos principal that is allowed to connect to the |
---|
| 46 | server. This option may be specified multiple times with different |
---|
| 47 | principals. If none are specified, the user |
---|
| 48 | .B sms |
---|
| 49 | in the local realm is assumed. |
---|
| 50 | .SH FILES |
---|
| 51 | /etc/athena/moira.conf \- For configuration variables. |
---|
| 52 | /etc/athena/srvtab \- It must be able to get rcmd Kerberos tickets. |
---|
| 53 | .SH "SEE ALSO" |
---|
| 54 | The Project Athena Technical Plan section on Moira. |
---|